Breaking the Barriers of Android Dynamic Analysis with Static Analysis (UNLOCK)

The UNLOCK project aims to utilise static analysis methods to overcome the limitations of dynamic analysis on the Android platform.

The project at a glance

Start date:

01 Jan 2024
Duration in months:

36
Funding:

FNR
Principal Investigator(s):

Jacques KLEIN

Tegawendé François d Assise BISSYANDE

About

The UNLOCK project aims to achieve several key objectives and make meaningful contributions to advancing the field of Android app analysis. Our primary goals are as follows: 1) Firstly, to identify the mechanisms—particularly those specific to Android—that hinder dynamic analysis tools and prevent them from achieving adequate code coverage. To this end, we plan to conduct a systematic literature review and empirical studies to assess the limitations of existing dynamic analysis techniques. Additionally, we will examine the Android framework and applications to uncover platform-specific features that obstruct dynamic analysis from exploring certain parts of the code. 2) Secondly, to develop new static analysis techniques tailored to each of the previously identified barriers, and to use this information to assist dynamic analysis tools—effectively leveraging static analysis to “unlock” dynamic analysis. For example, static analysis can be employed to detect code segments triggered by specific network packets, enabling us to simulate these interactions and stress-test the associated code. This will involve designing a communication protocol or language to facilitate the exchange of information between static and dynamic analysis components. 3) Thirdly, our ultimate aim is to release an open-source framework that enables novel forms of dynamic analysis for Android applications in a user-friendly and accessible way. This framework will be actionable, modular, and straightforward to use, making it a valuable asset for both researchers and practitioners. Overall, UNLOCK is an ambitious and pioneering project that seeks to enhance Android app analysis by delivering practical tools for analysts. By identifying Android-specific challenges and modelling them through innovative static analysis techniques, the project aims to significantly improve code coverage. Through the development of cutting-edge methods and the release of a functional open-source framework, UNLOCK aspires to support the security and reliability of Android applications in a meaningful way.